RSBAC Handbook
Preface
Recent Changes
Feedback
Conventions Used
Acknowledgements
Contacts
Development
Professional Support
Introduction to RSBAC
History
Feature List
Design Goals
Areas of Use
Compatibility
Architecture and Implementation
Subjects and Objects
Request Types
Framework Components
Access Control Enforcement Facility (AEF)
Access Control Decision Facility (ADF)
Data Structures Component
Interfaces
Logging Facility
Runtime Registration
User Management
Security Modules
Authenticated User
(AUTH)
Role Compatibility
(RC)
Access Control Lists
(
ACL
)
Mandatory Access Control
(MAC)
PaX
(PAX)
Dazuko Malware Scanner
(DAZ)
Linux Capabilities
(CAP)
Jail
(JAIL)
Linux Resources
(RES)
File Flags
(FF)
Privacy Model
(PM)
Installation
Choosing the Right Package
Installing from Source
Linux Kernel
Administration Tools
First Boot
Configuration
System Base
Service Encapsulation
User Management
Logging
Selecting a Security Model Combination
Breaking the Requirements into Model Specific Designs
Setting up Modules
AUTH: Authentication Enforcement
RC: Role Compatibility
JAIL: Process Jails
CAP: Linux Capabilities
PAX: PaX Support
FF: File Flags
RES: Resource Control
ACL: Access Control Lists
MAC: Mandatory Access Control
PM: Privacy Model
DAZ: Dazuko Malware Scanner
Administration Examples
Maintenance
Upgrade and Migration
Backup and Restore
Appendixes
RSBAC Reference
Kernel Boot Parameters
proc Interface
Targets and Requests
Error Codes
RSBAC Benchmarks
—-
The handbook is published under the
CCPL license
.